STATEMENT OF APPLICABILITY

OBJECTIVE

The statement of applicability is a requirement of ISO 27001 as specified in clause

4.2.1j) of ISO 27001:2005. It reflects a risk assessment process. Controls areaddressed in the same order and using the same numbering as in Annex A of thestandard and this statement explains which controls have been adopted and sets outthe reasons for these decisions.